Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 4266 | 3 XSS in ProtonMail for iOS | XSS | Apple | Vladimir Metnew (@vladimir_metnew) | Bug Bounty | 2019-03-06 | 2023-06-13 |
| 3793 | Telegram (v4.9.155353) was rendering file:// links + opening them via NSWorkspace.open -> code execution. | RCE | Telegram | Vladimir Metnew (@vladimir_metnew) | Bug Bounty | 2019-12-08 | 2023-06-13 |
| 3278 | Exploiting popular macOS apps with a single “.terminal” file. | MacOS File Quarantine bypass | Internet Bug Bounty Slack Keybase Telegram | Vladimir Metnew (@vladimir_metnew) | Bug Bounty | 2020-07-27 | 2023-06-13 |
| 1804 | RCE in GitHub Desktop < 2.9.4 | RCE | GitHub | Vladimir Metnew (@vladimir_metnew) | Bug Bounty | 2022-02-18 | 2023-06-13 |
| 1581 | [UNPATCHED] Cli: gh run download implementation allows overwriting git repository configuration upon artifacts downloading | RCE | GitHub | Vladimir Metnew (@vladimir_metnew) | Bug Bounty | 2022-05-04 | 2023-06-13 |